Rapid7 Vulnerability & Exploit Database

RHSA-2014:1042: java-1.7.1-ibm security update

RHSA-2014:1042: java-1.7.1-ibm security update

Severity

10

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

07/17/2014

Created

07/25/2018

Added

09/24/2014

Modified

07/04/2017

Description

IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environmentand the IBM Java Software Development Kit.This update fixes several vulnerabilities in the IBM Java RuntimeEnvironment and the IBM Java Software Development Kit. Detailedvulnerability descriptions are linked from the IBM Security alertspage, listed in the References section. (CVE-2014-4208, CVE-2014-4209,CVE-2014-4218, CVE-2014-4219, CVE-2014-4220, CVE-2014-4221, CVE-2014-4227,CVE-2014-4244, CVE-2014-4252, CVE-2014-4262, CVE-2014-4263, CVE-2014-4265,CVE-2014-4266)The CVE-2014-4262 issue was discovered by Florian Weimer of Red HatProduct Security.All users of java-1.7.1-ibm are advised to upgrade to these updatedpackages, containing the IBM Java SE 7R1 SR1-FP1 release. All runninginstances of IBM Java must be restarted for the update to take effect.

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.